Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GARENATW/mRHOsPbVv3nJ6EK3fLcpSFtityg.roa
File: mRHOsPbVv3nJ6EK3fLcpSFtityg.roa (raw, json)
Hash identifier: uvZ1rJW3npcFxVpYaeSMMaS7kDOXEgYXUgyQh8X/DNA=
Subject key identifier: 99:11:CE:B0:F6:D5:BF:79:C9:E8:42:B7:7C:B7:29:48:5B:62:B7:28
Certificate issuer: /CN=261E03DBE27DFCD8B3E0C55F2F0433EA022D1D4B
Certificate serial: 0761
Authority key identifier: 26:1E:03:DB:E2:7D:FC:D8:B3:E0:C5:5F:2F:04:33:EA:02:2D:1D:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Jh4D2-J9_Niz4MVfLwQz6gItHUs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GARENATW/mRHOsPbVv3nJ6EK3fLcpSFtityg.roa
Signing time: Tue 29 Sep 2020 10:03:44 +0000
ROA not before: Tue 29 Sep 2020 10:03:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 103.121.177.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1889 (0x761)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=261E03DBE27DFCD8B3E0C55F2F0433EA022D1D4B
Validity
Not Before: Sep 29 10:03:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9911CEB0F6D5BF79C9E842B77CB729485B62B728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:08:c5:09:f2:4f:97:82:f6:20:d3:c8:50:52:
75:b2:82:09:3c:34:66:15:04:0e:0d:6e:b7:2d:18:
4a:ec:4c:e3:20:a1:de:ba:89:a7:0a:82:8a:b7:92:
ec:85:6a:fe:a4:06:fa:53:fc:a2:95:72:27:e1:05:
7a:c9:e4:a0:cb:96:d3:5d:29:dc:08:f1:da:ae:d1:
ac:df:33:88:ab:46:b2:46:1d:88:15:ab:2d:d5:24:
97:b7:23:20:e7:7e:b1:3e:a6:d9:35:0a:d8:51:9f:
73:86:84:52:8e:86:23:fe:45:d4:12:1b:a6:99:1e:
62:5d:8d:d3:29:bb:32:fa:7f:e2:58:65:cb:83:18:
df:c3:14:ad:d4:96:4b:85:a4:d7:3b:f9:b7:fc:21:
3f:50:8b:c0:e4:7b:65:e6:e7:dd:40:ac:f6:36:27:
88:a0:c0:94:71:be:ed:f3:51:87:c4:26:43:cc:aa:
9a:3c:4d:e3:0e:23:93:51:fd:46:4b:f4:c6:23:99:
ba:c5:10:41:94:54:70:c3:6f:a2:77:c9:07:d0:68:
50:ec:99:41:d4:0c:4c:c9:41:fc:20:32:5a:e1:ac:
3b:4e:81:35:a7:4a:1c:04:b1:47:bb:f7:21:7e:b2:
0e:a5:96:9c:b8:73:6b:60:10:d9:dc:87:b3:7f:3b:
d6:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:11:CE:B0:F6:D5:BF:79:C9:E8:42:B7:7C:B7:29:48:5B:62:B7:28
X509v3 Authority Key Identifier:
keyid:26:1E:03:DB:E2:7D:FC:D8:B3:E0:C5:5F:2F:04:33:EA:02:2D:1D:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GARENATW/Jh4D2-J9_Niz4MVfLwQz6gItHUs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Jh4D2-J9_Niz4MVfLwQz6gItHUs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GARENATW/mRHOsPbVv3nJ6EK3fLcpSFtityg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.121.177.0/24
Signature Algorithm: sha256WithRSAEncryption
95:a4:88:c7:1e:e5:ea:ab:cf:42:0f:16:d0:e4:d5:7d:1e:17:
74:99:72:12:ce:46:89:eb:c8:0a:91:32:fe:98:33:af:1a:a2:
2c:00:0c:e6:23:f6:db:80:17:a0:57:58:b5:01:0d:4c:d7:ff:
0d:6a:f3:68:9e:91:0e:b9:70:60:ba:0e:d0:2e:c8:4c:3d:78:
13:bc:27:b3:06:55:3d:42:92:c4:0f:2c:28:62:59:b9:88:c1:
0e:74:4e:f5:df:7b:3a:3c:e7:f5:5f:4d:b8:6a:07:1a:bb:0c:
b3:74:40:98:bf:5a:c7:a3:e6:fb:5c:c4:94:90:29:70:f9:cf:
b6:ce:18:dd:af:07:48:81:39:64:8d:56:78:d1:fe:dc:cb:eb:
89:e3:e7:61:71:da:6b:55:73:59:d3:17:fd:1b:e7:48:af:7a:
f9:35:a6:3a:04:a7:07:f7:36:41:48:09:bf:76:db:45:1f:5d:
4f:7d:75:d3:f5:33:bd:1b:87:ed:93:62:29:70:86:66:64:bf:
05:56:c9:10:b4:e7:fd:79:23:e0:d4:bf:15:ab:a7:c7:5b:da:
86:ed:a6:93:bb:ba:d5:02:60:cb:35:e9:82:a8:17:df:cc:32:
64:75:a9:36:14:a7:42:cd:38:40:9e:81:32:ca:cd:e4:ee:46:
c6:a8:00:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org